cryoto: drbg - clear all temporary memory The buffer uses for temporary data must be cleared entirely. In AES192 the used buffer is drbg_statelen(drbg) + drbg_blocklen(drbg) as documented in the comment above drbg_ctr_df. This patch ensures that the temp buffer is completely wiped. Signed-off-by: Stephan Mueller <[email protected]> Signed-off-by: Herbert Xu <[email protected]>

commit: 8e0498d99f182dd06c012dfc62768e8ca0450adf [log] [tgz]
author: Stephan Mueller <[email protected]> Fri Apr 17 14:54:08 2015 +0200
committer: Herbert Xu <[email protected]> Tue Apr 21 09:14:38 2015 +0800
tree: f0fcc1eab2958f309989812113c56cf8c74728e4
parent: 1a92b2ba339221a4afee43adf125fcc9a41353f7 [diff] [blame]
diff --git a/crypto/drbg.c b/crypto/drbg.c
index b69409c..8d2944f 100644
--- a/crypto/drbg.c
+++ b/crypto/drbg.c

@@ -487,7 +487,7 @@
 
 out:
 	memset(iv, 0, drbg_blocklen(drbg));
-	memset(temp, 0, drbg_statelen(drbg));
+	memset(temp, 0, drbg_statelen(drbg) + drbg_blocklen(drbg));
 	memset(pad, 0, drbg_blocklen(drbg));
 	return ret;
 }
commit	8e0498d99f182dd06c012dfc62768e8ca0450adf	[log] [tgz]
author	Stephan Mueller <[email protected]>	Fri Apr 17 14:54:08 2015 +0200
committer	Herbert Xu <[email protected]>	Tue Apr 21 09:14:38 2015 +0800
tree	f0fcc1eab2958f309989812113c56cf8c74728e4
parent	1a92b2ba339221a4afee43adf125fcc9a41353f7 [diff] [blame]